diff options
author | netblue30 <netblue30@yahoo.com> | 2017-02-12 10:17:32 -0500 |
---|---|---|
committer | netblue30 <netblue30@yahoo.com> | 2017-02-12 10:17:32 -0500 |
commit | 3f3dd80ed63236c06ccbee2c54fa9d7cd2341c16 (patch) | |
tree | 14537e2a1639d68675c2b49eeb6441be16196d46 /etc/firejail.config | |
parent | firecfg.config fix (diff) | |
download | firejail-3f3dd80ed63236c06ccbee2c54fa9d7cd2341c16.tar.gz firejail-3f3dd80ed63236c06ccbee2c54fa9d7cd2341c16.tar.zst firejail-3f3dd80ed63236c06ccbee2c54fa9d7cd2341c16.zip |
follow-symlink-as-user runtime config option in /etc/firejail/firejail.config
Diffstat (limited to 'etc/firejail.config')
-rw-r--r-- | etc/firejail.config | 6 |
1 files changed, 6 insertions, 0 deletions
diff --git a/etc/firejail.config b/etc/firejail.config index 824e3f503..5498b2112 100644 --- a/etc/firejail.config +++ b/etc/firejail.config | |||
@@ -20,6 +20,12 @@ | |||
20 | # Enable Firejail green prompt in terminal, default disabled | 20 | # Enable Firejail green prompt in terminal, default disabled |
21 | # firejail-prompt no | 21 | # firejail-prompt no |
22 | 22 | ||
23 | # Follow symlink as user. While using --whitelist feature, | ||
24 | # symlinks pointing outside home directory are followed only | ||
25 | # if both the link and the real file are owned by the user. | ||
26 | # Enabled by default | ||
27 | # follow-symlink-as-user yes | ||
28 | |||
23 | # Force use of nonewprivs. This mitigates the possibility of | 29 | # Force use of nonewprivs. This mitigates the possibility of |
24 | # a user abusing firejail's features to trick a privileged (suid | 30 | # a user abusing firejail's features to trick a privileged (suid |
25 | # or file capabilities) process into loading code or configuration | 31 | # or file capabilities) process into loading code or configuration |